Security firm publishes video of Google AdWords scam

Powered by SC Magazine
 

Evidence posted on YouTube.

Security software firm Exploit Prevention Labs has published a video which it claims proves that cyber-criminals are using Google's AdWords to infect unsuspecting users with malware.

The firm claimed last week to have hard evidence that the exploit was being carried out.

The Nailed in 30 Seconds video has been posted on YouTube and claims to show how cyber-criminals ran Google ads for legitimate trusted organisations like the Better Business Bureau

However, when users clicked on the ads, they were redirected to a malicious website that attempted to exploit a common security vulnerability in Internet Explorer.

Users who had not installed Microsoft's latest security patches were infected with a so-called post-logger, malware designed to steal confidential account access information, in this case from customers of 100 different banks.

"The Google attack signals an escalation in the tactics used to take advantage of unpatched vulnerabilities in common software programs," said Roger Thompson, chief technology officer at Exploit Prevention Labs.

"Exploits are threatening to undermine user trust in even the most widely used websites like Google, Yahoo and MSN."

Copyright ©v3.co.uk


Security firm publishes video of Google AdWords scam
 
 
 
Top Stories
Feeling Shellshocked?
Stay up to date with patching for the Bash bug.
 
Amazon forced to reboot EC2 to patch Xen bug
Rolling restarts over next week.
 
Vodafone reveals plans to store users' online activity
Says retrieval under Govt proposal will impose massive cost.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
Which is the most prevalent cyber attack method your organisation faces?




   |   View results
Phishing and social engineering
  66%
 
Advanced persistent threats
  4%
 
Unpatched or unsupported software vulnerabilities
  11%
 
Denial of service attacks
  6%
 
Insider threats
  12%
TOTAL VOTES: 1355

Vote